# POC: http://localhost/inventory/admin/pageViewGroups.php in this# url you can edit the groups information with pressing onto the group name. After the edit page open# you can enter your payload into the description field. After going back to# the groups page you will see your Javascript code gonna run.# This vulnerability is also exist while you are creating a new group.